Re: PKCS #11 + gnutls

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PKCS #11 + gnutls

From:	Nikos Mavrogiannopoulos
Subject:	Re: PKCS #11 + gnutls
Date:	Fri, 25 Mar 2011 11:34:03 +0100
User-agent:	Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.14) Gecko/20110223 Thunderbird/3.1.8

On 03/25/2011 10:34 AM, Christian Hilberg wrote:

>> It should be noted however that PKCS #11 is an old API with few
>> problems. If you expect the PKCS #11 modules to be used by multiple
>> crypto libraries, we suggest that you use the intermediate module
>> p11-kit. It is available at: http://p11-glue.freedesktop.org/
> Aside from p11-kit, has GnuTLS PKCS #11 been tried with the
> OpenCryptoki [1] / Trousers [2] stack (or glue, whichever wording is
> more appropriate)? I'm asking just out of curiosity as we're using
> OpenCryptoki/Trousers and NSS presently, since there had not been
> PKCS #11 support in GnuTLS when we started out with our project [3],
> which could also profit from the now-available PKCS #11 support in
> GnuTLS.

GnuTLS has been tried with opensc PKCS #11 module and smart-cards.
Since a very basic subset of the PKCS #11 API is used I don't expect
to be incompatibilities with the modules you mention, but if they are
please let me know.

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

PKCS #11 + gnutls, Nikos Mavrogiannopoulos, 2011/03/24
- Re: PKCS #11 + gnutls, Christian Hilberg, 2011/03/25
  - Re: PKCS #11 + gnutls, Nikos Mavrogiannopoulos <=
    - Re: PKCS #11 + gnutls, Christian Hilberg, 2011/03/25

Prev by Date: Re: PKCS #11 + gnutls
Next by Date: Re: PKCS #11 + gnutls
Previous by thread: Re: PKCS #11 + gnutls
Next by thread: Re: PKCS #11 + gnutls
Index(es):
- Date
- Thread